Lucene search
K

737 matches found

CVE
CVE
added 2026/04/16 8:57 p.m.10 views

CVE-2026-40901

DataEase (open-source data visualization platform) versions 2.10.20 and earlier ship legacy velocity-1.7.jar pulling in commons-collections-3.2.1.jar containing InvokerTransformer gadget chain. Quartz 2.3.2 is bundled and deserializes JOB_DATA blobs from qrtz_job_details via ObjectInputStream wit...

9CVSS6.3AI score0.0063EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/04/16 8:57 p.m.17 views

CVE-2026-40901 DataEase: Quartz Deserialization → Remote Code Execution

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below ship the legacy velocity-1.7.jar, which pulls in commons-collections-3.2.1.jar containing the InvokerTransformer deserialization gadget chain. Quartz 2.3.2, also bundled in the application, deserializ...

9CVSS0.0063EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/16 8:57 p.m.6 views

EUVD-2026-23310

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below ship the legacy velocity-1.7.jar, which pulls in commons-collections-3.2.1.jar containing the InvokerTransformer deserialization gadget chain. Quartz 2.3.2, also bundled in the application, deserializ...

9CVSS6.3AI score0.0063EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/04/16 8:53 p.m.16 views

CVE-2026-40900 DataEase has SQL Injection via Stacked Queries

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the /de2api/datasetData/previewSql endpoint. The user-supplied SQL is wrapped in a subquery without validation that the input is a single SELECT statement...

8.7CVSS0.00342EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/16 8:53 p.m.7 views

EUVD-2026-23308

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the /de2api/datasetData/previewSql endpoint. The user-supplied SQL is wrapped in a subquery without validation that the input is a single SELECT statement...

8.7CVSS6.1AI score0.00342EPSS
Exploits1References2
CVE
CVE
added 2026/04/16 8:53 p.m.17 views

CVE-2026-40900

DataEase prior to 2.10.21 contains an SQL injection in the /de2api/datasetData/previewSql endpoint. User-supplied SQL is wrapped in a subquery without validating that the input is a single SELECT. Coupled with a JDBC blocklist bypass enabling allowMultiQueries=true, an attacker can break out of t...

8.8CVSS6.1AI score0.00342EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/16 8:53 p.m.3 views

CVE-2026-40900 DataEase has SQL Injection via Stacked Queries

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the /de2api/datasetData/previewSql endpoint. The user-supplied SQL is wrapped in a subquery without validation that the input is a single SELECT statement...

8.7CVSS6AI score0.00342EPSS
Exploits1References2
NVD
NVD
added 2026/04/16 8:16 p.m.4 views

CVE-2026-40899

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a JDBC parameter blocklist bypass vulnerability in the MySQL datasource configuration. The Mysql class uses Lombok's @Data annotation, which auto-generates a public setter for the...

8.3CVSS0.00388EPSS
Exploits1References2
NVD
NVD
added 2026/04/16 8:16 p.m.6 views

CVE-2026-33122

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the API datasource update process. When a new table definition is added during a datasource update via /de2api/datasource/update, the deTableName field from th...

9.8CVSS0.00405EPSS
Exploits1References2
NVD
NVD
added 2026/04/16 8:16 p.m.6 views

CVE-2026-33207

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the /datasource/getTableField endpoint. The getTableFiledSql method in CalciteProvider.java incorporates the tableName parameter directly into SQL query string...

8.8CVSS0.00349EPSS
Exploits1References2
CVE
CVE
added 2026/04/16 7:48 p.m.19 views

CVE-2026-40899

DataEase

8.3CVSS5.9AI score0.00388EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/04/16 7:48 p.m.7 views

EUVD-2026-23293

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a JDBC parameter blocklist bypass vulnerability in the MySQL datasource configuration. The Mysql class uses Lombok's @Data annotation, which auto-generates a public setter for the...

8.3CVSS5.9AI score0.00388EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/04/16 7:48 p.m.4 views

CVE-2026-40899

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a JDBC parameter blocklist bypass vulnerability in the MySQL datasource configuration. The Mysql class uses Lombok's @Data annotation, which auto-generates a public setter for the...

8.3CVSS5.9AI score0.00388EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/16 7:48 p.m.4 views

CVE-2026-40899 DataEase has an Arbitrary File Read Vulnerability

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a JDBC parameter blocklist bypass vulnerability in the MySQL datasource configuration. The Mysql class uses Lombok's @Data annotation, which auto-generates a public setter for the...

8.3CVSS5.8AI score0.00388EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/04/16 7:48 p.m.28 views

CVE-2026-40899 DataEase has an Arbitrary File Read Vulnerability

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a JDBC parameter blocklist bypass vulnerability in the MySQL datasource configuration. The Mysql class uses Lombok's @Data annotation, which auto-generates a public setter for the...

8.3CVSS0.00388EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/04/16 7:37 p.m.26 views

CVE-2026-33207 DataEase SQL Injection Vulnerability

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the /datasource/getTableField endpoint. The getTableFiledSql method in CalciteProvider.java incorporates the tableName parameter directly into SQL query string...

8.6CVSS0.00349EPSS
Exploits1References2
CVE
CVE
added 2026/04/16 7:37 p.m.19 views

CVE-2026-33207

DataEase (open-source data visualization/analytics) contains a SQL injection in versions ≤ 2.10.20 at the /datasource/getTableField endpoint. The getTableFiledSql method concatenates the tableName into SQL via String.format without parameterization, and validation in DatasourceServer.py can be by...

8.8CVSS6.1AI score0.00349EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/04/16 7:24 p.m.27 views

CVE-2026-33122 DataEase has SQL Injection via Datasource Management

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the API datasource update process. When a new table definition is added during a datasource update via /de2api/datasource/update, the deTableName field from th...

8.6CVSS0.00405EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/04/16 7:24 p.m.5 views

CVE-2026-33122 DataEase has SQL Injection via Datasource Management

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the API datasource update process. When a new table definition is added during a datasource update via /de2api/datasource/update, the deTableName field from th...

8.6CVSS5.8AI score0.00405EPSS
Exploits1References2
CVE
CVE
added 2026/04/16 7:24 p.m.23 views

CVE-2026-33122

CVE-2026-33122 concerns DataEase, an open‑source data visualization/analytics platform. Versions 2.10.20 and below are affected by a SQL injection in the API datasource update flow: during a datasource update, the deTableName field is passed to DatasourceSyncManage.createEngineTable and concatena...

9.8CVSS6AI score0.00405EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder